Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/hmG-c-zFnGmEvbIg_Hh3AgHQ_sA.roa
File: hmG-c-zFnGmEvbIg_Hh3AgHQ_sA.roa (raw, json)
Hash identifier: XD08sq7o7r27HS3os33H3nHt8Jy51X9vgADILfw8LmA=
Subject key identifier: 86:61:BE:73:EC:C5:9C:69:84:BD:B2:20:FC:78:77:02:01:D0:FE:C0
Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Certificate serial: 018B5909CC0DA04771FCCC9406CB8EA4DC26
Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/hmG-c-zFnGmEvbIg_Hh3AgHQ_sA.roa
Signing time: Sun 22 Oct 2023 20:18:16 +0000
ROA not before: Sun 22 Oct 2023 20:18:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12880
IP address blocks: 2.188.2.0/24 maxlen: 24
2.188.3.0/24 maxlen: 24
2.188.4.0/24 maxlen: 24
2.188.5.0/24 maxlen: 24
2.188.0.0/16 maxlen: 24
2.188.10.0/24 maxlen: 24
2.188.9.0/24 maxlen: 24
2.188.8.0/24 maxlen: 24
2.188.11.0/24 maxlen: 24
2.188.7.0/24 maxlen: 24
2.188.14.0/24 maxlen: 24
2.188.13.0/24 maxlen: 24
2.188.17.0/24 maxlen: 24
2.188.12.0/24 maxlen: 24
2.188.12.0/22 maxlen: 22
2.188.15.0/24 maxlen: 24
2.188.22.0/24 maxlen: 24
2.188.18.0/24 maxlen: 24
2.188.21.0/24 maxlen: 24
2.188.20.0/24 maxlen: 24
2.188.19.0/24 maxlen: 24
2.188.26.0/23 maxlen: 23
2.188.30.0/24 maxlen: 24
2.188.25.0/24 maxlen: 24
2.188.31.0/24 maxlen: 24
2.188.48.0/22 maxlen: 22
78.39.152.0/24 maxlen: 24
78.39.156.0/24 maxlen: 24
78.39.155.0/24 maxlen: 24
78.39.153.0/24 maxlen: 24
78.39.165.0/24 maxlen: 24
78.39.179.0/24 maxlen: 24
2.189.5.48/28 maxlen: 28
2.188.54.0/24 maxlen: 24
2.188.58.0/24 maxlen: 24
2.188.53.0/24 maxlen: 24
2.188.55.0/24 maxlen: 24
2.188.61.0/24 maxlen: 24
2.188.64.0/21 maxlen: 21
2.188.60.0/24 maxlen: 24
2.188.59.0/24 maxlen: 24
2.188.78.0/24 maxlen: 24
2.188.77.0/24 maxlen: 24
2.188.76.0/24 maxlen: 24
2.188.79.0/24 maxlen: 24
78.38.242.0/24 maxlen: 24
78.38.243.0/24 maxlen: 24
78.38.241.0/24 maxlen: 24
78.38.244.0/24 maxlen: 24
78.38.245.0/24 maxlen: 24
78.38.246.0/24 maxlen: 24
78.38.251.0/24 maxlen: 24
78.38.248.0/24 maxlen: 24
78.38.249.0/24 maxlen: 24
78.38.253.0/24 maxlen: 24
78.38.250.0/24 maxlen: 24
78.38.255.0/24 maxlen: 24
78.38.254.0/24 maxlen: 24
78.39.0.0/16 maxlen: 24
78.38.193.0/24 maxlen: 24
78.38.201.0/24 maxlen: 24
78.38.209.0/24 maxlen: 24
2.187.0.0/16 maxlen: 24
78.38.220.0/23 maxlen: 23
78.38.240.0/24 maxlen: 24
78.39.128.0/24 maxlen: 24
78.39.130.0/24 maxlen: 24
2.189.5.96/28 maxlen: 28
2.181.0.0/16 maxlen: 24
78.39.43.0/24 maxlen: 24
78.39.40.0/24 maxlen: 24
78.39.47.0/24 maxlen: 24
78.39.51.0/24 maxlen: 24
78.39.48.0/24 maxlen: 24
78.39.49.0/24 maxlen: 24
78.39.46.0/24 maxlen: 24
78.39.50.0/24 maxlen: 24
78.39.55.0/24 maxlen: 24
78.39.56.0/24 maxlen: 24
78.39.57.0/24 maxlen: 24
78.39.53.0/24 maxlen: 24
78.39.58.0/24 maxlen: 24
78.39.54.0/24 maxlen: 24
78.39.59.0/24 maxlen: 24
78.39.62.0/23 maxlen: 24
78.38.32.0/19 maxlen: 19
217.219.236.0/22 maxlen: 22
78.38.0.0/16 maxlen: 24
78.38.160.0/19 maxlen: 19
195.146.37.0/24 maxlen: 24
195.146.32.0/19 maxlen: 19
195.146.32.0/20 maxlen: 20
195.146.36.0/24 maxlen: 24
195.146.32.0/24 maxlen: 24
195.146.50.0/24 maxlen: 24
195.146.46.0/23 maxlen: 23
195.146.60.0/24 maxlen: 24
195.146.63.0/24 maxlen: 24
217.219.40.0/22 maxlen: 22
2.178.192.0/18 maxlen: 18
217.219.0.0/16 maxlen: 24
217.219.24.0/21 maxlen: 21
217.219.152.0/21 maxlen: 21
85.185.230.0/23 maxlen: 23
2.189.5.64/28 maxlen: 28
85.185.192.0/22 maxlen: 22
217.218.85.0/24 maxlen: 24
80.191.103.0/24 maxlen: 24
217.218.94.0/24 maxlen: 24
217.218.96.0/19 maxlen: 19
217.218.105.0/24 maxlen: 24
217.218.104.0/24 maxlen: 24
2.178.0.0/19 maxlen: 19
217.218.114.0/24 maxlen: 24
217.218.131.0/24 maxlen: 24
217.218.127.0/24 maxlen: 24
217.218.132.0/24 maxlen: 24
80.191.41.0/24 maxlen: 24
80.191.64.0/23 maxlen: 24
217.218.48.0/21 maxlen: 21
80.191.61.0/24 maxlen: 24
80.191.67.0/24 maxlen: 24
217.218.56.0/24 maxlen: 24
80.191.69.0/24 maxlen: 24
80.191.70.0/24 maxlen: 24
217.218.55.0/24 maxlen: 24
217.218.64.0/24 maxlen: 24
217.218.64.0/18 maxlen: 18
80.191.81.0/24 maxlen: 24
217.218.67.0/24 maxlen: 24
80.191.88.0/21 maxlen: 24
2.189.79.64/27 maxlen: 27
85.185.42.0/24 maxlen: 24
85.185.45.0/24 maxlen: 24
217.218.239.0/24 maxlen: 24
217.218.235.0/24 maxlen: 24
2.189.5.112/28 maxlen: 28
2.178.128.0/18 maxlen: 18
217.218.143.0/24 maxlen: 24
2.178.32.0/19 maxlen: 19
217.218.141.0/24 maxlen: 24
217.218.155.0/24 maxlen: 24
2.178.64.0/18 maxlen: 18
85.185.0.0/16 maxlen: 24
217.218.180.0/24 maxlen: 24
2.185.0.0/16 maxlen: 16
2.177.0.0/17 maxlen: 17
2.177.128.0/17 maxlen: 17
80.191.0.0/24 maxlen: 24
80.191.0.0/16 maxlen: 24
2.191.0.0/16 maxlen: 16
217.218.0.0/16 maxlen: 24
80.191.24.0/24 maxlen: 24
80.191.27.0/24 maxlen: 24
80.191.29.0/24 maxlen: 24
80.191.36.0/24 maxlen: 24
217.218.21.0/24 maxlen: 24
80.191.32.0/24 maxlen: 24
2.189.5.32/28 maxlen: 28
2.182.248.0/22 maxlen: 22
2.182.214.0/23 maxlen: 23
2.189.79.32/27 maxlen: 27
2.176.192.0/18 maxlen: 18
2.189.5.80/28 maxlen: 28
2.176.0.0/12 maxlen: 12
2.189.7.0/24 maxlen: 24
2.189.0.0/16 maxlen: 24
2.188.183.0/24 maxlen: 24
2.188.185.0/24 maxlen: 24
2.188.186.0/24 maxlen: 24
2.188.192.0/18 maxlen: 18
2.182.0.0/16 maxlen: 24
2.189.78.0/24 maxlen: 24
2.189.77.0/24 maxlen: 24
2.189.79.0/24 maxlen: 24
2.189.4.0/28 maxlen: 28
2.182.96.0/19 maxlen: 19
2.189.44.0/24 maxlen: 24
2.189.45.0/24 maxlen: 24
2.189.59.0/24 maxlen: 24
2001:4188::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 22 Oct 2023 20:21:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:59:09:cc:0d:a0:47:71:fc:cc:94:06:cb:8e:a4:dc:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Validity
Not Before: Oct 22 20:18:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8661be73ecc59c6984bdb220fc78770201d0fec0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:34:c0:04:3b:0d:b0:92:d4:6f:53:e1:7d:1b:
eb:13:91:d6:cc:15:0f:09:b6:4f:fc:77:be:cd:4b:
3d:d3:c1:68:f0:19:56:7f:5e:9b:17:65:69:8f:8c:
4c:44:78:0e:09:18:d2:5f:2b:7c:2b:0d:35:2b:1d:
b1:7e:ca:59:35:de:a9:cd:5b:05:ac:7e:57:bd:61:
bb:ab:fc:d7:5b:85:f1:60:cd:d4:42:0e:d9:a1:d0:
51:e1:ee:8d:2b:50:7b:bb:45:3a:19:88:ae:d1:7d:
29:e2:f8:ab:e5:79:d2:ae:99:f9:27:7f:5c:fe:7c:
25:d8:4b:62:48:a6:9a:0f:81:e7:c1:b7:1e:f4:dd:
19:29:ae:1e:03:57:f6:d1:c7:bc:d7:f0:9d:b6:1d:
47:8e:47:a2:aa:82:71:00:57:36:ab:2c:34:f6:33:
40:46:72:38:7d:14:67:09:f9:9d:61:d3:f3:3b:87:
53:5f:e6:61:39:8f:02:3c:f6:4c:27:cf:cb:bd:7e:
2c:95:d8:0a:06:6c:ff:87:7a:c5:35:74:f6:e8:62:
15:5c:61:a1:d2:a8:45:68:0d:d0:bd:65:e4:7f:74:
2f:1a:28:22:4a:88:cb:72:4a:eb:b6:3e:ab:85:44:
a2:40:b3:65:b6:57:9d:2c:b7:fa:62:62:77:a5:bf:
63:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:61:BE:73:EC:C5:9C:69:84:BD:B2:20:FC:78:77:02:01:D0:FE:C0
X509v3 Authority Key Identifier:
keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/hmG-c-zFnGmEvbIg_Hh3AgHQ_sA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.176.0.0/12
78.38.0.0/15
80.191.0.0/16
85.185.0.0/16
195.146.32.0/19
217.218.0.0/15
IPv6:
2001:4188::/48
Signature Algorithm: sha256WithRSAEncryption
21:7c:65:d9:93:86:34:e8:62:18:2b:a0:a4:84:89:6a:eb:cc:
2f:c4:d3:f8:72:d7:e4:d3:7a:71:ae:90:53:a8:86:2a:32:a0:
89:ac:30:b7:19:f6:48:11:32:36:84:1e:0e:e2:50:aa:01:6c:
c4:89:6d:21:cf:3b:90:25:29:d6:74:36:b4:95:1b:f0:05:ab:
b7:fc:d4:b2:04:7b:f8:22:ec:18:de:b6:70:34:40:6d:5c:d7:
b9:10:43:11:47:6c:68:59:bc:d8:ed:6f:30:0a:ed:23:8d:4f:
d0:69:fb:d1:4f:f4:69:74:86:1e:2c:a9:5f:57:5a:b6:c8:69:
0d:e9:52:d0:39:0b:14:59:f0:b8:a2:a2:b0:ac:be:bb:4b:65:
15:53:52:67:9d:5e:52:68:91:0d:ad:d6:3e:ee:07:1a:e2:81:
9a:6c:89:2f:b0:48:30:3b:96:2c:98:8d:2f:87:99:8d:6e:21:
34:50:d1:36:3e:51:1e:6e:5f:a5:69:26:e3:b0:b2:a9:19:c4:
b0:dd:4f:fa:85:16:8d:d9:24:86:5a:8e:84:dd:99:66:4f:a8:
5c:21:97:fb:cb:79:ff:43:54:c5:d6:c2:60:91:a8:ae:58:a1:
d0:41:3a:aa:65:51:47:5f:45:93:df:b3:df:42:c1:e4:df:e8:
d9:8b:09:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:53 2024 by rpki-client on console-ams.rpki-client.org